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DETAILED ACTION 

Priority 

1. Receipt is acknowledged of papers submitted under 35 U.S.C. 1 19(a)-(d), which 
papers have been placed of record in the file. 

Response to Amendment 

2. This communication is in response to application's amendment filed on 
10/12/2007. Claims 1-20 are pending. Claims 19 and 20 are newly added. 

Claim Objections 

3. Claims 8 and 1 8 are objected to because of the following informalities: the term 
"accommendated" it is believed to be a typo. Appropriate correction is required. 

Claim Rejections - 35 USC §103 

4. The factual inquiries set forth in Graham v. John Deere Co., 383 U.S. 1 , 148 
USPQ 459 (1966), that are applied for establishing a background for determining 
obviousness under 35 U.S.C. 103(a) are summarized as follows: 

1 . Determining the scope and contents of the prior art. 

2. Ascertaining the differences between the prior art and the claims at issue. 

3. Resolving the level of ordinary skill in the pertinent art. 

4. Considering objective evidence present in the application indicating 
obviousness or nonobviousness. 

5. The following is a quotation of 35 U.S.C. 103(a) which forms the basis for all 
obviousness rejections set forth in this Office action: 

(a) A patent may not be obtained though the invention is not identically disclosed or described as set 
forth in section 102 of this title, if the differences between the subject matter sought to be patented and 
the prior art are such that the subject matter as a whole would have been obvious at the time the 
invention was made to a person having ordinary skill in the art to which said subject matter pertains. 
Patentability shall not be negatived by the manner in which the invention was made. 
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6. Claims 1-12, 14, and 16-20 are rejected under 35 U.S.C. 103(a) as being 
unpatentable over Miki et aL (US2007/01 10060) in view of Oguchi et al. 
(US2002/00067725). 

Regarding claim 1, Miki et al. disclose packet switching apparatus comprising: 

• a controller (see figure 2 ref11 control unit and paragraph 41) which triggers 
an L2TP Network Server (LNS) function of terminating a plurality of L2TP tunnels 
or an L2TP Access Concentrator (LAC) function of initiating a plurality of L2TP 
tunnels (see paragraphs 40 and 41) for 

• a plurality of communication l/Fs to transmit and receive packets (see paragraph 
41 line 7-25 external transmission line); 

• a plurality of first logical interfaces associated with the communication l/Fs to 
transmit and receive packets to. and from user terminals (see paragraph 41 line 
36); 

• a plurality of second logical interfaces associated with the communication l/Fs to 
transmit and receive packets to and from backbone networks (see paragraph 41 
line 36); 

• associating a respective virtual router to one of the communication l/Fs as an 
input l/F, one of the communication l/Fs as an output l/F, one of the first logical 
interfaces, and one of the second logical interfaces per action (see paragraph 
41 line 40); 
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Miki et al. disclose all the subject matter of the claimed invention with the 
exception of: 

• a plurality of virtual routers accommodated therein and utilizes a routing 
information table to support each one of the virtual routers to perform routing 
actions independently from other virtual routers; 

• a memory stored with the routing information table of the plurality of virtual 
routers which includes a plurality of individual routing table s each corresponding 
to one of the virtual routers; 

• wherein packets received from the first logical interface are forwarded to one of 
the second logical interfaces associated with the respective virtual router 
according to the individual routing table corresponding to the respective virtual 
router associated with the first logical interface. 

Oguchi et al. from the same or similar fields of endeavor teaches the use of virtual 
routers (see Oguchi et al. paragraph 85), and distinction from traffics from users sites 
have other VPN-ID s (see background of Oguchi et al. paragraph 63 which 
corresponds to independently from other virtual routers), virtual router 
correspondence table (see Oguchi et al. paragraphs 187 and 193), and transmitting to 
destination virtual router (see Oguchi et al. paragraph 200). 

Thus, it would have been obvious to one of ordinary skill in the art at the time of 
the invention to use the virtual routers and routing tables as taught by Oguchi et al. in 
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the packet switching apparatus of Miki et al. in order to implement an instance of a 
routing protocol responsible to disseminate VPN reachability information between VRs. 

Regarding claim 2, Miki et al. teaches 

• wherein the controller triggers (see figure 2 ref11 control unit and 
paragraph 41) the LAC function (see paragraph 40); 

• a communication l/F to transmit and receive, to and from the user terminals 
the first logical interface is one of PPP frames assigned among the 
communication l/Fs (see paragraph 41) or a logical interface corresponding 
to one of PPP sessions (see paragraph 43 line 3-12); 

• the second interface transmits and receives L2TP packets (see paragraph 
40); 

Regarding claim 3, Miki et al. teaches 

• wherein the controller triggers (see figure 2 ref 1 1 control unit and 
paragraph 41) the LAC function (see paragraph 40); 

• the first logical interface is a logical interface corresponding to one of the 
L2TP tunnels is the first logical interface (see paragraph 42 input tunnel 
identifier and paragraph 44); 

• the second interface to transmits and receives L2TP packets (see 
paragraphs 42 figure 7); 
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• the LAC function associates each of PPP sessions from a user terminal with 

• the corresponding first logical interface (see paragraph 45 and figure 5). 

Regarding claim 4, Miki et al. teaches 

• wherein the controller triggers (see figure 2 ref11 control unit and 
paragraph 41) the LNS function (see paragraph 40); 

• the first logical interface is a communication l/F to transmit and receive L2TP 
packets assigned among the plurality of communication l/Fs (see figure 10 
tunnel TL 11 — 14 and paragraphs 44 and 47) or a logical interface 
corresponding to one of L2TP tunnels (see figure 10 tunnel TL 11 — 14 and 
paragraph 42 and 43); 

« 

• the second interface transmit and receive packets to and from backbone 
networks (see figure 7 &8 and paragraph 47); 

Regarding claim 5, Miki et al. teaches 

• wherein the controller triggers (see figure 2 refl 1 control unit and 
paragraph 41) the LNS function (see paragraph 40); 

• the first logical interface is a logical interface corresponding to one of received 
PPP sessions (see paragraph 41 line 27, and paragraph 42 input tunnel 
identifier); 
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• the second interface transmits and receives IP packets to and from backbone 
networks (see paragraph 41 line 27, and paragraph 42 output tunnel 
identifier); 

• the LNS function associates each of the PPP sessions multiplexed to a L2TP 
tunnel with the corresponding first logical interface (see paragraph 41 line 33 
and paragraph 46). 

Regarding claim 6, Miki et al. teaches memory further stores a table includes a 
virtual router field for storing virtual router identifiers, a destination IP address field for 
storing destination IP addresses of received packets, an address mask field for storing 
an address mask, a self-address field for storing an identifier indicating whether a 
packet to be processed is a self-addressed packet or not (see paragraphs 42 and 43), 
a next hop address field for storing an address of a next hop node, a physical l/F field 
for storing physical l/F identifiers, and a logical l/F field for storing logical l/F 
identifiers(see paragraphs 42-45) 

Regarding claim 7, Miki et al. teaches a correspondence between the first logical 
interfaces and the virtual routers and the correspondence between the second logical 
interfaces and the virtual routers can be changed by a control command received by 
one of the communication l/Fs (see paragraph 51 upgrading to advanced network 
services and operation of existing services and it is inherent that control 
command is received by one of the communication l/Fs). 
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Regarding claims 8 and 9, Miki et al. disclose packet switching apparatus 
comprising: 

• a plurality of communication l/Fs to connect to external communication lines 
packets (see paragraph 41 line 7-8); 

• a processor which executes predetermined processing on packets 
transmitted and received through the a user terminal (see figure 2 box 13n 
input session processing unit and box 14n output session processing 
unit); and 

• a memory which stores reference information used to execute predetermined 
processing on received packets (see paragraph 42 line 1 retains a table 
and paragraph 43 retains a table); 

• wherein the memory stores: the interface table holding a relation among a 
physical interface identifier or a logical interface identifier of the received 
packet, an identifier representing a protocol supported by the interface, 
information specifying processing to be executed based upon the protocol, 
and a virtual router identifier (see paragraphs 42-45 and figure 3 and 4); 
and 

• a routing information table holding routing information to be processed by 
routers corresponding to the virtual router identifiers (see figure 3 and 4); 
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• wherein the processor (see figure 2 box 13n input session processing 
unit and box 14n output session processing unit) refers to the interface 
table and identifies an identifier of a virtual router (see paragraph 42-43) that 
corresponds to a respective L2TP tunnel to process the received packets 
(see paragraph 42 and 45) and 

• reads from the routing information table routing information managed by the 
virtual router corresponding to the virtual router identifier and forwards the 
received packets (see paragraph 41 line 30-46). 

Miki et al. disclose all the subject matter of the claimed invention with the 
exception of: 

• utilizes an interface table to support each of a plurality of virtual routers 
accommendated therein to perform routing actions independently from 
other virtual routers; 

• (claim 9) the interface table and the routing information table are stored in 
different memories 

Oguchi et al. from the same or similar fields of endeavor teaches the use of 
virtual routers (see Oguchi et al. paragraph 85), and distinction from traffics from users 
sites have other VPN-ID s (see background of Oguchi et al. paragraph 63 which 
corresponds to independently from other virtual routers), virtual router 
correspondence table (see Oguchi et al. paragraphs 187 and 193), and transmitting to 
destination virtual router (see Oguchi et al. paragraph 200), virtual interface 
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management table (see Oguchi et al. paragraph 214 and figure 17), and virtual 
routing table (see Oguchi et al. paragraph 187). 

Thus, it would have been obvious to one of ordinary skill in the art at the time of 
the invention to use the virtual routers and routing tables as taught by Oguchi et al. in 
the packet switching apparatus of Miki et al. in order to implement an instance of a 
routing protocol responsible to disseminate VPN reachability information between VRs. 

Regarding claim 10, Miki et al. teaches L2TP tunnel identifiers (see paragraph 
42 line 9), PPP session identifiers (see paragraph 42 line 10) or identifiers of Internet 
service providers connected through external communication lines are used as the 
logical interface identifiers (see paragraph 41 line 21-25). 

Regarding claim 11, Miki et al. teaches port numbers of the plurality of 
communication l/Fs (see paragraph 41 line 21) are used as the physical interface 
identifiers (see paragraph 42 line 9). 

Regarding claim 12, Miki et al. teaches 

wherein the processor (see figure 2 box 13n input session processing unit 
and box 14n output session processing unit) executes an L2TP Access 
Concentrator (LAC) function (see paragraph 40) of terminating a plurality of L2TP 
tunnels or an L2TP Access Concentrator (LAC) function of initiating a plurality of L2TP 
tunnels for the plurality of virtual routers accommodated therein (see paragraph 44). 
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Regarding claim 14, Miki et al. teaches further comprising a means for switching 
between the LAC function and the LNS function (see paragraph 40 line 15-17). 

Regarding claim 16, Miki et al. teaches further comprising: 

• a program memory storing a program, the program for analyzing contents 
of management control commands received by the communication l/Fs 
(see figure 2 box 13n input session processing unit and box 14n 
output session processing unit it is inherent that processing unit is 
run by a program); 

• wherein the processor executes the management control commands to 
authorize, according to a contract, control command sources to change 
settings in the interface tables corresponding to all the virtual routers (see 
paragraph 51 line 2-5). 

Regarding claim 17, Miki et al. teaches the processor executes the 
management control commands to authorize a particular control command source to 
change settings in the interface table corresponding to a particular virtual router (see 
paragraph 51 line 6-15). 

Regarding claim 18, Miki et al. disclose packet switching apparatus comprising: 

• providing the virtual access router including a plurality of communication 
l/Fs to connect to external communication lines (see paragraph 41 line 7- 

8); 
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• a processor which executes predetermined processing on packets 
transmitted and received through the terminal (see figure 2 box 13n 
input session processing unit and box 14n output session 
processing unit); and 

• a memory which stores reference information used to execute 
predetermined processing on received packets (see paragraph 42 line 1 
retains a table and paragraph 43 retains a table); 

• wherein the memory stores; the interface table holding, for each of 
interfaces, a relation among a physical interface identifier or logical 
interface identifier of the received packet, an identifier representing a 
protocol supported by the interface, information specifying processing to 
be executed based upon the protocol, and a virtual router identifier (see 
paragraph 42 and paragraph 43 and figure 3 and 4); and 

• a routing information table holding routing information to be processed by 
routers corresponding to the virtual router identifiers, respectively (see 
figure 3 and 4); 

• wherein the processor refers to the interface table and identifies an 
identifier of a virtual router that corresponds to a respective L2TP tunnel to 
process the received packets (see paragraph 41 line 30-46) and 
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• reads from the routing information table routing information managed by 
the virtual router corresponding to the virtual router identifier and forwards 
the received packets (see paragraph 41 line 30-46); 

• a program memory storing a program, the program for analyzing contents 
of management control commands received by the communication l/Fs 
(see figure 2 box 13n input session processing unit and box 14n 
output session processing unit it is inherent that processing unit is 
executed by a program); 

• wherein the processor executes the management control commands to 
authorize, according to a contract, control command sources to change 
setting in the interface tables corresponding to all the virtual routers (see 
paragraph 51 line 2-5), 

• wherein the processor executes the management control commands to 
authorize a particular control command source to change settings in the 
interface table corresponding to a particular virtual router (see paragraph 
51 line 2-5); 

• by a communication carrier who owns or manages the virtual access 
routers associating interfaces connecting to networks of other 
communication carriers with particular virtual routers (see paragraph 41 
line 21-25) and transferring to the other communication carriers (see 
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paragraph 44) authorities to use management control commands 
corresponding to the virtual routers (see paragraph 51 line 2-5). 

Miki et al. disclose all the subject matter of the claimed invention with the 
exception of: 

• utilizes an interface table to support each of a plurality of virtual routers 
accommendated therein to perform routing actions independently from 
other virtual routers; 
Oguchi et al. from the same or similar fields of endeavor teaches the use of 
virtual routers (see Oguchi et al. paragraph 85), and distinction from traffics from users 
sites have other VPN-ID s (see background of Oguchi et al. paragraph 63 which 
corresponds to independently from other virtual routers), virtual router 
correspondence table (see Oguchi et al. paragraphs 187 and 193), and transmitting to 
destination virtual router (see Oguchi et al. paragraph 200). 

Thus, it would have been obvious to one of ordinary skill in the art at the time of 
the invention to use the virtual routers and routing tables as taught by Oguchi et al. in 
the packet switching apparatus of Miki et al. in order to implement an instance of a 
routing protocol responsible to disseminate VPN reachability information between VRs. 

Regarding claim 19, Miki et al. teaches further comprising: at least one third 
logical interface, wherein 

the third logical interface serves as the second logical interface of a first 

« 

virtual router of the plurality of virtual routers and also serves as the first logical 
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interface of a second virtual router of the plurality of virtual routers, and a packet is 
transmitted and received between the first virtual router and the second virtual router 
via the third logical interface (see figure 1 where first tunnel (TL12) have first and 
second logical interfaces at AN11 and AN13, and it is inherent that for system to 
have the third logical interface serves as the second logical interface of a first 
virtual router of the plurality of virtual routers and also serves as the first logical 
interface of a second virtual router of the plurality of virtual routers). 

Regarding claim 19, Miki et al. teaches in a case where the logical interface 
identifier is not directly related to the physical interface identifier (see paragraph 42 
input port and input tunnel ID are two different identities), 

Miki et al. disclose all the subject matter of the claimed invention with the 
exception of: 

• the interface table includes an independent entry including the logical 
interface identifier but excluding any of the physical interface identifiers, 
and 

• a packet received by the communication l/F is subjected to a protocol 
processing by corresponding one of the virtual routers based on an entry 
including corresponding one of the physical interface identifiers of the 
interface table and then subjected to a protocol processing by 
corresponding one of the virtual routers based on an entry including 
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corresponding one of the virtual interface identifiers of the 

♦ 

interface table 

Oguchi et al. from the same or similar fields of endeavor teaches the use of 
virtual routers (see Oguchi et al. paragraph 85), and distinction from traffics from users 
sites have other VPN-ID s (see background of Oguchi et al. paragraph 63 which 
corresponds to independently from other virtual routers), virtual router 
correspondence table (see Oguchi et al. paragraphs 187 and 193), and transmitting to 
destination virtual router (see Oguchi et al. paragraph 200), virtual interface 
management table (see Oguchi et al. paragraph 214 and figure 17), and virtual 
routing table (see Oguchi et al. paragraph 187). 

Thus, it would have been obvious to one of ordinary skill in the art at the time of 
the invention to use the virtual routers and routing tables as taught by Oguchi et al. in 
the packet switching apparatus of Miki et al. in order to implement an instance of a 
routing protocol responsible to disseminate VPN reachability information between VRs. 
7. Claims 13 and 15 are rejected under 35 U.S.C. 103(a) as being unpatentable 
over Miki et al. and Oguchi et al. in view of Forslow (US2002/01 33534). 

Regarding claims 13 and 15, Miki et al. disclose all the subject matter of the 
claimed invention with the exception of the memory stores a sequence for generating 
L2TP tunnels and a sequence for terminating the L2TP tunnels corresponding to 
received packets, and the processor reads and executes any of the sequences to 
realize the LAC function and LNS function; the processor has a setting means for 
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» 

determining which of the sequences is to be read, and switches between the LAC 
function and the LNS function by the setting means. 

Forslow from the same or similar fields of endeavor teaches the use of packet's 

■ 

sequence number to protect against replay attacks (see Forslow paragraph 158). 
Thus, it would have been obvious to one of ordinary skill in the art at the time of the 
invention to use the packet's sequence number as taught by Forslow in packet 
switching apparatus of Miki et al. in order to provide protection against replay attacks 
and long term protection (see Forslow paragraph 158). 

Response to Arguments 

8. Applicant's arguments with respect to claim 1-20 have been considered but are 
moot in view of the new ground(s) of rejection. 

9. Applicant's arguments, see applicants remark on page 9 filed 10/12/2007, with 
respect to claim 2 have been fully considered and are persuasive. The objection of 
claim 2 has been withdrawn. 

10. Applicant's arguments, see applicants remark on page 9, filed 10/12/2007, with 
respect to claim 18 have been fully considered and are persuasive. The 1 12 2 nd 
rejection of claim 18 has been withdrawn. 

1 1 . Regarding allowable subject matter on the first office of claim 9, examiner 
discovered prior art that teaches the limitation (see rejection) therefore allowable subject 
matter on claim 9 is withdrawn. 
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Conclusion 

12. The prior art made of record and not relied upon is considered pertinent to 

* 

applicant's disclosure. 

Beser et al. (US6754622) disclose method for network address table maintenance in a 
data-over-cable system using destination reachibility. 

Puthiyandyil et al. (US7225236) disclose load balancing between LNSS using virtual 
LNS with minimal LAC configuration. 

13. Applicant's amendment necessitated the new ground(s) of rejection presented in 
this Office action. Accordingly, THIS ACTION IS MADE FINAL See MPEP 

■ 

§ 706.07(a). Applicant is reminded of the extension of time policy as set forth in 37 
CFR 1.136(a). 

A shortened statutory period for reply to this final action is set to expire THREE 
MONTHS from the mailing date of this action. In the event a first reply is filed within 
TWO MONTHS of the mailing date of this final action and the advisory action is not 
mailed until after the end of the THREE-MONTH shortened statutory period, then the 
shortened statutory period will expire on the date the advisory action is mailed, and any 
extension fee pursuant to 37 CFR 1.136(a) will be calculated from the mailing date of 
the advisory action. In no event, however, will the statutory period for reply expire later 
than SIX MONTHS from the date of this final action. 

■ 

14. Any inquiry concerning this communication or earlier communications from the 
examiner should be directed to Wutchung Chu whose telephone number is 571 270 
1411. The examiner can normally be reached on Monday - Friday 1000 - 1500EST. 
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If attempts to reach the examiner by telephone are unsuccessful, the examiner's 
supervisor, Edan D. Orgad can be reached on 571 272 7884. The fax phone number 
for the organization where this application or proceeding is assigned is 571-273-8300. 

« 

Information regarding the status of an application may be obtained from the 
Patent Application Information Retrieval (PAIR) system. Status information for 
published applications may be obtained from either Private PAIR or Public PAIR. 
Status information for unpublished applications is available through Private PAIR only. 
For more information about the PAIR system, see http://pair-direct.uspto.gov. Should 
you have questions on access to the Private PAIR system, contact the Electronic 
Business Center (EBC) at 866-217-9197 (toll-free). If you would like assistance from a 
USPTO Customer Service Representative or access to the automated information 
system, call 800-786-9199 (IN USA OR CANADA) or 571-272-1000. 



A/VC/ 

Wutchung Chu 



EDAN .ORGAD 
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